npm - @technomoron/api-server-base - Versions diffs - 1.1.13 → 2.0.0-beta.10 - Mend

@technomoron/api-server-base 1.1.13 → 2.0.0-beta.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (116) hide show

package/README.txt +25 -2
package/dist/cjs/api-server-base.cjs +448 -111
package/dist/cjs/api-server-base.d.ts +91 -34
package/dist/cjs/auth-api/auth-module.d.ts +105 -0
package/dist/cjs/auth-api/auth-module.js +1180 -0
package/dist/cjs/auth-api/compat-auth-storage.d.ts +57 -0
package/dist/cjs/auth-api/compat-auth-storage.js +128 -0
package/dist/cjs/auth-api/mem-auth-store.d.ts +68 -0
package/dist/cjs/auth-api/mem-auth-store.js +141 -0
package/dist/cjs/{auth-module.d.ts → auth-api/module.d.ts} +7 -7
package/dist/cjs/{auth-module.cjs → auth-api/module.js} +1 -1
package/dist/cjs/auth-api/sql-auth-store.d.ts +77 -0
package/dist/cjs/auth-api/sql-auth-store.js +172 -0
package/dist/cjs/auth-api/storage.d.ts +38 -0
package/dist/cjs/{auth-storage.cjs → auth-api/storage.js} +17 -7
package/dist/cjs/auth-api/types.d.ts +34 -0
package/dist/cjs/auth-api/types.js +2 -0
package/dist/cjs/index.cjs +41 -7
package/dist/cjs/index.d.ts +29 -5
package/dist/cjs/oauth/base.d.ts +10 -0
package/dist/cjs/oauth/base.js +6 -0
package/dist/cjs/oauth/memory.d.ts +16 -0
package/dist/cjs/oauth/memory.js +99 -0
package/dist/cjs/oauth/models.d.ts +45 -0
package/dist/cjs/oauth/models.js +58 -0
package/dist/cjs/oauth/sequelize.d.ts +68 -0
package/dist/cjs/oauth/sequelize.js +210 -0
package/dist/cjs/oauth/types.d.ts +50 -0
package/dist/cjs/oauth/types.js +3 -0
package/dist/cjs/passkey/base.d.ts +16 -0
package/dist/cjs/passkey/base.js +6 -0
package/dist/cjs/passkey/memory.d.ts +27 -0
package/dist/cjs/passkey/memory.js +86 -0
package/dist/cjs/passkey/models.d.ts +25 -0
package/dist/cjs/passkey/models.js +115 -0
package/dist/cjs/passkey/sequelize.d.ts +55 -0
package/dist/cjs/passkey/sequelize.js +220 -0
package/dist/cjs/passkey/service.d.ts +20 -0
package/dist/cjs/passkey/service.js +356 -0
package/dist/cjs/passkey/types.d.ts +78 -0
package/dist/cjs/passkey/types.js +2 -0
package/dist/cjs/token/base.d.ts +38 -0
package/dist/cjs/token/base.js +114 -0
package/dist/cjs/token/memory.d.ts +19 -0
package/dist/cjs/token/memory.js +149 -0
package/dist/cjs/token/sequelize.d.ts +58 -0
package/dist/cjs/token/sequelize.js +404 -0
package/dist/cjs/token/types.d.ts +27 -0
package/dist/cjs/token/types.js +2 -0
package/dist/cjs/user/base.d.ts +26 -0
package/dist/cjs/user/base.js +45 -0
package/dist/cjs/user/memory.d.ts +35 -0
package/dist/cjs/user/memory.js +173 -0
package/dist/cjs/user/sequelize.d.ts +41 -0
package/dist/cjs/user/sequelize.js +182 -0
package/dist/cjs/user/types.d.ts +11 -0
package/dist/cjs/user/types.js +2 -0
package/dist/esm/api-server-base.d.ts +91 -34
package/dist/esm/api-server-base.js +447 -110
package/dist/esm/auth-api/auth-module.d.ts +105 -0
package/dist/esm/auth-api/auth-module.js +1178 -0
package/dist/esm/auth-api/compat-auth-storage.d.ts +57 -0
package/dist/esm/auth-api/compat-auth-storage.js +124 -0
package/dist/esm/auth-api/mem-auth-store.d.ts +68 -0
package/dist/esm/auth-api/mem-auth-store.js +137 -0
package/dist/esm/{auth-module.d.ts → auth-api/module.d.ts} +7 -7
package/dist/esm/{auth-module.js → auth-api/module.js} +1 -1
package/dist/esm/auth-api/sql-auth-store.d.ts +77 -0
package/dist/esm/auth-api/sql-auth-store.js +168 -0
package/dist/esm/auth-api/storage.d.ts +38 -0
package/dist/esm/{auth-storage.js → auth-api/storage.js} +15 -5
package/dist/esm/auth-api/types.d.ts +34 -0
package/dist/esm/auth-api/types.js +1 -0
package/dist/esm/index.d.ts +29 -5
package/dist/esm/index.js +19 -2
package/dist/esm/oauth/base.d.ts +10 -0
package/dist/esm/oauth/base.js +2 -0
package/dist/esm/oauth/memory.d.ts +16 -0
package/dist/esm/oauth/memory.js +92 -0
package/dist/esm/oauth/models.d.ts +45 -0
package/dist/esm/oauth/models.js +51 -0
package/dist/esm/oauth/sequelize.d.ts +68 -0
package/dist/esm/oauth/sequelize.js +199 -0
package/dist/esm/oauth/types.d.ts +50 -0
package/dist/esm/oauth/types.js +2 -0
package/dist/esm/passkey/base.d.ts +16 -0
package/dist/esm/passkey/base.js +2 -0
package/dist/esm/passkey/memory.d.ts +27 -0
package/dist/esm/passkey/memory.js +82 -0
package/dist/esm/passkey/models.d.ts +25 -0
package/dist/esm/passkey/models.js +108 -0
package/dist/esm/passkey/sequelize.d.ts +55 -0
package/dist/esm/passkey/sequelize.js +216 -0
package/dist/esm/passkey/service.d.ts +20 -0
package/dist/esm/passkey/service.js +319 -0
package/dist/esm/passkey/types.d.ts +78 -0
package/dist/esm/passkey/types.js +1 -0
package/dist/esm/token/base.d.ts +38 -0
package/dist/esm/token/base.js +107 -0
package/dist/esm/token/memory.d.ts +19 -0
package/dist/esm/token/memory.js +145 -0
package/dist/esm/token/sequelize.d.ts +58 -0
package/dist/esm/token/sequelize.js +400 -0
package/dist/esm/token/types.d.ts +27 -0
package/dist/esm/token/types.js +1 -0
package/dist/esm/user/base.d.ts +26 -0
package/dist/esm/user/base.js +38 -0
package/dist/esm/user/memory.d.ts +35 -0
package/dist/esm/user/memory.js +169 -0
package/dist/esm/user/sequelize.d.ts +41 -0
package/dist/esm/user/sequelize.js +176 -0
package/dist/esm/user/types.d.ts +11 -0
package/dist/esm/user/types.js +1 -0
package/package.json +13 -3
package/dist/cjs/auth-storage.d.ts +0 -133
package/dist/esm/auth-storage.d.ts +0 -133

package/dist/esm/token/base.js ADDED Viewed

@@ -0,0 +1,107 @@
+import jwt from 'jsonwebtoken';
+function normalizeScope(scope) {
+    if (!scope) {
+        return undefined;
+    }
+    if (Array.isArray(scope)) {
+        return scope.filter((entry) => typeof entry === 'string' && entry.length > 0);
+    }
+    return scope
+        .split(/\s+/)
+        .map((entry) => entry.trim())
+        .filter((entry) => entry.length > 0);
+}
+function normalizeRefreshTtlSeconds(value) {
+    if (typeof value === 'number' && Number.isFinite(value) && value > 0) {
+        return Math.floor(value);
+    }
+    if (typeof value === 'string') {
+        const parsed = Number(value);
+        if (Number.isFinite(parsed) && parsed > 0) {
+            return Math.floor(parsed);
+        }
+    }
+    return undefined;
+}
+function normalizeTokenInternal(input) {
+    if (!input.refreshToken) {
+        throw new Error('refreshToken is required');
+    }
+    if (!input.accessToken) {
+        throw new Error('accessToken is required');
+    }
+    if (input.userId === undefined || input.userId === null) {
+        throw new Error('userId is required');
+    }
+    const userId = String(input.userId);
+    const ruid = input.ruid === undefined || input.ruid === null ? undefined : String(input.ruid);
+    const expires = input.expires ? new Date(input.expires) : new Date(Date.now() + 30 * 24 * 60 * 60 * 1000);
+    const issuedAt = input.issuedAt ? new Date(input.issuedAt) : new Date();
+    const lastSeenAt = input.lastSeenAt ? new Date(input.lastSeenAt) : issuedAt;
+    const scope = normalizeScope(input.scope);
+    const refreshTtlSeconds = normalizeRefreshTtlSeconds(input.refreshTtlSeconds);
+    const status = input.status === 'revoked' ? 'revoked' : expires.getTime() < Date.now() ? 'expired' : 'active';
+    const sessionCookie = typeof input.sessionCookie === 'boolean' ? input.sessionCookie : false;
+    return {
+        ...input,
+        accessToken: input.accessToken,
+        refreshToken: input.refreshToken,
+        userId,
+        domain: typeof input.domain === 'string' ? input.domain : '',
+        fingerprint: typeof input.fingerprint === 'string' ? input.fingerprint : '',
+        label: typeof input.label === 'string' ? input.label : '',
+        browser: typeof input.browser === 'string' ? input.browser : '',
+        device: typeof input.device === 'string' ? input.device : '',
+        ip: typeof input.ip === 'string' ? input.ip : '',
+        os: typeof input.os === 'string' ? input.os : '',
+        loginType: typeof input.loginType === 'string' && input.loginType.length > 0 ? input.loginType : undefined,
+        scope,
+        refreshTtlSeconds,
+        expires,
+        issuedAt,
+        lastSeenAt,
+        status,
+        ruid,
+        sessionCookie
+    };
+}
+export class TokenStore {
+    // Instance helpers
+    normalizeToken(token) {
+        return normalizeTokenInternal(token);
+    }
+    jwtSign(payload, secret, expiresInSeconds, options) {
+        const opts = { ...(options ?? {}), expiresIn: expiresInSeconds };
+        try {
+            const token = jwt.sign(payload, secret, opts);
+            return { success: true, token };
+        }
+        catch (error) {
+            return { success: false, error: error instanceof Error ? error.message : String(error) };
+        }
+    }
+    jwtVerify(token, secret, options) {
+        try {
+            const data = jwt.verify(token, secret, options ?? {});
+            return { success: true, data };
+        }
+        catch (error) {
+            if (error instanceof jwt.TokenExpiredError) {
+                return { success: false, expired: true, error: 'Token expired' };
+            }
+            return { success: false, expired: false, error: error instanceof Error ? error.message : String(error) };
+        }
+    }
+    jwtDecode(token, options) {
+        try {
+            const data = jwt.decode(token, options ?? {});
+            if (data === null) {
+                return { success: false, error: 'Invalid token format' };
+            }
+            return { success: true, data };
+        }
+        catch (error) {
+            return { success: false, error: error instanceof Error ? error.message : String(error) };
+        }
+    }
+}

package/dist/esm/token/memory.d.ts ADDED Viewed

@@ -0,0 +1,19 @@
+import { TokenStore } from './base.js';
+import type { Token } from './types.js';
+export declare class MemoryTokenStore extends TokenStore {
+    private readonly tokens;
+    save(record: Token): Promise<void>;
+    get(query: Partial<Token>, opts?: {
+        includeExpired?: boolean;
+    }): Promise<Token | null>;
+    delete(query: Partial<Token>): Promise<number>;
+    update(params: Partial<Token> & {
+        refreshToken: string;
+    }): Promise<boolean>;
+    list(userId: string | number, opts?: {
+        limit?: number;
+        offset?: number;
+        includeExpired?: boolean;
+    }): Promise<Token[]>;
+    close(): Promise<void>;
+}

package/dist/esm/token/memory.js ADDED Viewed

@@ -0,0 +1,145 @@
+import { TokenStore } from './base.js';
+function comparableUserId(value) {
+    if (value === undefined || value === null) {
+        return undefined;
+    }
+    return String(value);
+}
+function cloneToken(record) {
+    // this.normalizeToken is not available in static context; caller passes through instance.
+    // cloning handled via store instance methods.
+    const normalized = record;
+    return {
+        ...normalized,
+        scope: normalized.scope ? [...normalized.scope] : undefined
+    };
+}
+function matchesQuery(record, query, includeExpired) {
+    if (query.refreshToken && record.refreshToken !== query.refreshToken) {
+        return false;
+    }
+    if (query.accessToken && record.accessToken !== query.accessToken) {
+        return false;
+    }
+    if (query.userId !== undefined && comparableUserId(record.userId) !== comparableUserId(query.userId)) {
+        return false;
+    }
+    if (query.clientId && record.clientId !== query.clientId) {
+        return false;
+    }
+    if (query.domain !== undefined && (record.domain ?? '') !== (query.domain ?? '')) {
+        return false;
+    }
+    if (query.fingerprint !== undefined && (record.fingerprint ?? '') !== (query.fingerprint ?? '')) {
+        return false;
+    }
+    if (query.loginType !== undefined && record.loginType !== (query.loginType ?? undefined)) {
+        return false;
+    }
+    if (query.label && record.label !== query.label) {
+        return false;
+    }
+    if (!includeExpired && (record.expires ?? new Date(0)).getTime() < Date.now()) {
+        return false;
+    }
+    return true;
+}
+export class MemoryTokenStore extends TokenStore {
+    constructor() {
+        super(...arguments);
+        this.tokens = [];
+    }
+    async save(record) {
+        const stored = this.normalizeToken(record);
+        const normalizedUserId = comparableUserId(stored.userId);
+        const domainProvided = record.domain !== undefined;
+        const fingerprintProvided = record.fingerprint !== undefined;
+        for (let index = this.tokens.length - 1; index >= 0; index -= 1) {
+            const existing = this.tokens[index];
+            if (comparableUserId(existing.userId) !== normalizedUserId) {
+                continue;
+            }
+            if (record.clientId && existing.clientId !== record.clientId) {
+                continue;
+            }
+            if (domainProvided && existing.domain !== stored.domain) {
+                continue;
+            }
+            if (fingerprintProvided && existing.fingerprint !== stored.fingerprint) {
+                continue;
+            }
+            this.tokens.splice(index, 1);
+        }
+        this.tokens.push(stored);
+    }
+    async get(query, opts) {
+        if (!query.refreshToken && !query.accessToken && query.userId === undefined) {
+            throw new Error('At least one token lookup field must be provided');
+        }
+        const includeExpired = opts?.includeExpired ?? false;
+        const record = this.tokens.find((token) => matchesQuery(token, query, includeExpired));
+        return record ? cloneToken(record) : null;
+    }
+    async delete(query) {
+        if (!query.refreshToken && !query.accessToken && query.userId === undefined && !query.clientId) {
+            return 0;
+        }
+        let removed = 0;
+        for (let index = this.tokens.length - 1; index >= 0; index -= 1) {
+            if (matchesQuery(this.tokens[index], query, true)) {
+                this.tokens.splice(index, 1);
+                removed += 1;
+            }
+        }
+        return removed;
+    }
+    async update(params) {
+        const token = this.tokens.find((record) => {
+            if (record.refreshToken !== params.refreshToken) {
+                return false;
+            }
+            if (params.clientId && record.clientId !== params.clientId) {
+                return false;
+            }
+            return true;
+        });
+        if (!token) {
+            return false;
+        }
+        const merged = { ...token };
+        const maybeAssign = (key) => {
+            const value = params[key];
+            if (value !== undefined) {
+                merged[key] = value;
+            }
+        };
+        maybeAssign('accessToken');
+        maybeAssign('expires');
+        maybeAssign('scope');
+        maybeAssign('label');
+        maybeAssign('domain');
+        maybeAssign('fingerprint');
+        maybeAssign('browser');
+        maybeAssign('device');
+        maybeAssign('ip');
+        maybeAssign('os');
+        maybeAssign('refreshTtlSeconds');
+        maybeAssign('loginType');
+        maybeAssign('issuedAt');
+        maybeAssign('lastSeenAt');
+        maybeAssign('sessionCookie');
+        const normalized = this.normalizeToken(merged);
+        Object.assign(token, normalized);
+        return true;
+    }
+    async list(userId, opts = {}) {
+        const includeExpired = opts.includeExpired ?? false;
+        const filtered = this.tokens.filter((token) => matchesQuery(token, { userId: comparableUserId(userId) }, includeExpired));
+        const offset = opts.offset ?? 0;
+        const limit = opts.limit ?? filtered.length;
+        return filtered.slice(offset, offset + limit).map(cloneToken);
+    }
+    async close() {
+        return;
+    }
+}

package/dist/esm/token/sequelize.d.ts ADDED Viewed

@@ -0,0 +1,58 @@
+import { CreationOptional, Model, type InferAttributes, type InferCreationAttributes, type ModelStatic, type Sequelize } from 'sequelize';
+import { TokenStore } from './base.js';
+import type { Token } from './types.js';
+declare class TokenModel extends Model<InferAttributes<TokenModel>, InferCreationAttributes<TokenModel>> implements InferAttributes<TokenModel> {
+    token_id: CreationOptional<number>;
+    user_id: string;
+    real_user_id: CreationOptional<string | null>;
+    expires: Date;
+    issued_at: CreationOptional<Date>;
+    last_seen_at: CreationOptional<Date>;
+    access: string;
+    refresh: string;
+    domain: CreationOptional<string>;
+    fingerprint: CreationOptional<string>;
+    label: CreationOptional<string>;
+    browser: CreationOptional<string>;
+    device: CreationOptional<string>;
+    ip: CreationOptional<string>;
+    os: CreationOptional<string>;
+    client_id: CreationOptional<string | null>;
+    scope: CreationOptional<string>;
+    login_type: CreationOptional<string>;
+    refresh_ttl_seconds: CreationOptional<number | null>;
+    session_cookie: CreationOptional<boolean>;
+}
+export type TokenAttributes = InferAttributes<TokenModel>;
+export type TokenCreationAttributes = InferCreationAttributes<TokenModel>;
+export interface SequelizeTokenStoreOptions {
+    sequelize: Sequelize;
+    tokenModel?: ModelStatic<TokenModel>;
+    tokenModelFactory?: (sequelize: Sequelize) => ModelStatic<TokenModel>;
+}
+export declare class SequelizeTokenStore extends TokenStore {
+    readonly Tokens: ModelStatic<TokenModel>;
+    constructor(options: SequelizeTokenStoreOptions);
+    save(record: Token): Promise<void>;
+    get(query: Partial<Token>, opts?: {
+        includeExpired?: boolean;
+    }): Promise<Token | null>;
+    delete(query: Partial<Token>): Promise<number>;
+    update(params: Partial<Token> & {
+        refreshToken: string;
+    }): Promise<boolean>;
+    list(userId: string | number, opts?: {
+        limit?: number;
+        offset?: number;
+        includeExpired?: boolean;
+    }): Promise<Token[]>;
+    close(): Promise<void>;
+    private normalizeUserId;
+    private resolveRealUserId;
+    private encodeStringArray;
+    private decodeStringArray;
+    private encodeScope;
+    private decodeScope;
+    private toTokenRecord;
+}
+export {};